What is the difference between HTTP and HTTPS?

You may have noticed when browsing online that some website addresses start with https:// whilst others start with http://. But have you ever wondered what that means in practice? In short, the difference is quite simple: one is secure (https) and the other is not (http).

What is HTTP? 

What you see in Chrome when you go to a HTTP web page

HTTP stands for hyper-text transfer protocol. It is essentially the protocol used by the client (generally your web browser such as Chrome, Edge, or Firefox) to allow communication with the server a website is hosted on. The protocol determines how your data is transported between the client and the web server. This can include anything from information about what you have clicked on when navigating around a website to bank details you enter when buying something online.  

What you see in FireFox when you go to a HTTP web page

HTTP was created in the 1989 by Tim Berners-Lee when the internet was relatively new, and the focus was on presenting the information needed between the browser and the web server. However, when data is transferred via HTTP it is not encrypted meaning it can be intercepted and altered. Which brings us onto HTTPS…. 

What is HTTPS? 

What you see in Chrome when you go to a HTTPS web page

The main difference between HTTP and HTTPS is the way in which data is transferred.  

HTTPS is essentially just an extended version of HTTP which has an added layer of security. This layer of security is powered by something called Transport Layered Security (TLS), a technology which ensures that the connection between your browser and the web server is encrypted. TLS also authenticates the server you are connecting to which protects any transmitted data from being tampered.  

What you see in FireFox when you go to a HTTPS web page

Therefore, if you are using a website to enter any information which you would not want someone to be able to intercept, such as your username/password, bank details etc. you should always check that the website is using HTTPS before moving any further.  

Does my website need to use HTTPS? 

If you own a business or manage a website, how important is it to switch to HTTPS if you aren’t using it already? 

It you are collecting sensitive data such as payment details and passwords the answer is easy – very. However, even if you are not, it is still worth considering switching to HTTPS.   

One of the main reasons (which you may have noticed yourself when browsing online) is that Google flags websites that are just using HTTP as ‘Not secure’. This can potentially worry users who are accessing your website and can build a negative first impression. This is particularly the case now that HTTPS is increasingly become the norm, which means that users are more likely to be alarmed if they come across a ‘non-secure’ website.  

Additionally, in August 2014, Google also announced that it would be using HTTPS as a ranking factor in their algorithm. They said at first this would just be a lightweight signal (HTTPS as a ranking signal  |  Google Search Central Blog) but that this may strengthen it over time.

Finally, if you collect any data about your customers through your website (even if it is not as sensitive as their banking information), making sure your site is secure is important so that you can keep this data protected – which is particularly important given the new data protection law.

Like this article?

Share on twitter
Share on Twitter
Share on linkedin
Share on LinkedIn
Share on email
Share by Email

Subscribe to our monthly newsletter

Get the best IT tips and Office ideas in your inbox

Further reading


How to add a Shared Mailbox to Outlook Mobile

If you have access to shared mailboxes and you need to view these in Outlook on your mobile, you don’t need to know the username and password for those accounts. You can add them using your existing delegated access rights.

Read More »

You have a new Fax!

When was the last time you received a fax? Possibly never. But, it might surprise some of you to know that millions of faxes get sent every day. In Germany, Japan and the US especially, they are alive and well, if not so much here in the UK. But how are they used in Phishing?

Read More »

Information Security

You can’t have IT without Security!

There, we said it, but what does that mean and perhaps more importantly, what does it mean for our customers?

Read More »
Scroll to Top